Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update aws-go-sdk to support EKS Pod Identity #5219

Open
bhvishal9 opened this issue Oct 30, 2024 · 0 comments
Open

Update aws-go-sdk to support EKS Pod Identity #5219

bhvishal9 opened this issue Oct 30, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@bhvishal9
Copy link

Is your feature request related to a problem? Please describe.
Currently boundary doesn't support EKS pod identity which is a much simpler way to provide AWS access. The newer versions of aws-sdk-go support EKS pod identity, it was added in version 1.47.1.

There is an error if you use the latest version of boundary 0.18.0 on EKS

Error parsing KMS configuration: error setting configuration on the kms plugin: rpc error: code = Unknown desc = error fetching AWS KMS wrapping key information: NoCredentialProviders: no valid providers in chain. Deprecated.
For verbose messaging see aws.Config.CredentialsChainVerboseErrors

Describe the solution you'd like
Boundary should work on EKS if using EKS pod identity for providing KMS access.

Describe alternatives you've considered
The other solution is to use IAM roles for service accounts or pass access keys/secret access keys to the configuration.
@bhvishal9 bhvishal9 added the enhancement New feature or request label Oct 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bhvishal9